
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/7f78e3-0ccd-41fc-9883-69be037bf079/1/nmh1g4EMwAZO207-QFf1phpV5ws.mft
File: nmh1g4EMwAZO207-QFf1phpV5ws.mft (raw, json)
Hash identifier: F8fme4xxS7P0nAFwKWaAmy9VOVkhOwFbnNBPBnUKq2Y=
Subject key identifier: 0C:84:09:76:60:B7:63:E0:71:E5:9E:70:77:36:69:24:77:8A:E0:01
Authority key identifier: 9E:68:75:83:81:0C:C0:06:4E:DB:4E:FE:40:57:F5:A6:1A:55:E7:0B
Certificate issuer: /CN=9e687583810cc0064edb4efe4057f5a61a55e70b
Certificate serial: 01987DF83FAD0F146D4DF8D2BC12381C7546
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nmh1g4EMwAZO207-QFf1phpV5ws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/7f78e3-0ccd-41fc-9883-69be037bf079/1/nmh1g4EMwAZO207-QFf1phpV5ws.mft
Manifest number: 04F1
Signing time: Wed 06 Aug 2025 06:01:17 +0000
Manifest this update: Wed 06 Aug 2025 06:01:17 +0000
Manifest next update: Thu 07 Aug 2025 06:01:17 +0000
Files and hashes: 1: nmh1g4EMwAZO207-QFf1phpV5ws.crl (hash: bzKwrrMiOMZC2cFNOCslzTO3HYhnEnjF4mKO2EZ5ZFs=)
2: qw-aF3yIkt-72WfpE7ETeHkvHMU.roa (hash: 3nZH1KB8lozx5AtSdJomkLmrFoDBz1VyVSOmQdHc1wE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/7f78e3-0ccd-41fc-9883-69be037bf079/1/nmh1g4EMwAZO207-QFf1phpV5ws.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/7f78e3-0ccd-41fc-9883-69be037bf079/1/nmh1g4EMwAZO207-QFf1phpV5ws.mft
rsync://rpki.ripe.net/repository/DEFAULT/nmh1g4EMwAZO207-QFf1phpV5ws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f8:3f:ad:0f:14:6d:4d:f8:d2:bc:12:38:1c:75:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e687583810cc0064edb4efe4057f5a61a55e70b
Validity
Not Before: Aug 6 06:01:17 2025 GMT
Not After : Aug 7 06:01:17 2025 GMT
Subject: CN=0c84097660b763e071e59e7077366924778ae001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:8d:ac:98:ec:f9:26:9a:70:46:2f:ec:e3:9b:
d6:14:2a:6a:50:6f:76:ca:61:a9:89:0f:d7:bf:55:
23:1f:28:66:6e:46:1b:b2:5a:91:22:72:c9:ff:f1:
c7:5b:71:68:d1:99:80:02:d3:88:2e:7f:6f:f4:38:
f7:76:3a:36:7c:88:bf:54:38:a6:d1:20:74:5a:cd:
ca:83:e9:92:39:d2:9a:e6:f0:98:8a:b8:7a:f7:b3:
56:3f:69:9a:46:fd:67:0d:9d:65:69:7d:24:f9:86:
80:e6:04:40:f5:3d:00:1e:69:54:76:29:9e:d1:53:
c3:ae:49:79:08:21:e7:f2:c2:df:05:0d:e5:73:e2:
9e:93:69:b4:0c:07:ef:64:24:76:7a:fb:35:a1:0a:
e5:7a:12:f2:ff:60:5c:ba:ee:c4:2b:44:c6:31:a5:
0f:21:62:3f:fc:7d:08:00:f3:c6:09:2a:ef:34:77:
d9:a7:8f:1a:fc:cc:6f:78:ef:f2:e3:22:0f:4d:97:
d0:aa:26:90:17:99:e6:e4:70:f1:40:7b:52:3c:00:
bc:4e:76:ae:3b:71:19:a5:e6:c9:eb:5c:e9:28:b6:
cc:da:a8:a5:9f:ae:46:ae:26:11:43:27:f0:74:8a:
13:07:3e:2b:86:4d:2b:e8:d5:76:ad:e6:ab:44:ff:
39:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:84:09:76:60:B7:63:E0:71:E5:9E:70:77:36:69:24:77:8A:E0:01
X509v3 Authority Key Identifier:
keyid:9E:68:75:83:81:0C:C0:06:4E:DB:4E:FE:40:57:F5:A6:1A:55:E7:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nmh1g4EMwAZO207-QFf1phpV5ws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/7f78e3-0ccd-41fc-9883-69be037bf079/1/nmh1g4EMwAZO207-QFf1phpV5ws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/7f78e3-0ccd-41fc-9883-69be037bf079/1/nmh1g4EMwAZO207-QFf1phpV5ws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:23:c7:65:17:e2:94:3e:24:fe:b4:a7:0c:90:f6:fe:b3:bb:
ac:c9:0c:9d:05:6d:86:56:51:3a:7a:62:d3:83:78:f0:2d:07:
42:3c:c5:c5:fe:9b:39:97:b2:30:64:ac:4f:76:f0:cb:f7:d1:
a7:c6:cb:a6:34:83:73:6e:78:ab:0a:04:bc:02:3c:b6:f2:43:
8d:00:b1:5c:61:92:db:6b:4b:15:88:e6:a1:d8:d7:83:0d:fd:
e3:82:27:8f:e3:83:04:2c:07:4d:e6:8a:69:b8:9f:41:cf:95:
2a:f3:02:28:1b:5f:30:2c:dd:a0:38:e7:cc:f4:3b:42:a0:86:
0d:a9:8c:63:32:d1:02:e1:cb:29:84:b1:da:69:72:f1:32:7d:
eb:e8:e5:03:a3:96:77:6c:c0:25:af:8a:d1:7e:8b:54:29:24:
5d:26:e4:f4:8d:a6:65:b8:1f:87:16:c4:ba:0c:14:89:31:3c:
6d:33:fe:2b:ea:44:78:2b:60:41:a7:3a:98:a3:e2:85:02:98:
9a:64:08:62:67:d6:7d:3b:4b:a8:7f:fa:dc:a2:43:aa:8d:bb:
2c:4f:6f:11:ca:c5:fe:0f:3d:b1:e8:ec:ba:e3:b9:2c:05:39:
85:7a:e4:36:6d:0e:29:e1:a7:fd:da:e3:e7:f7:ba:5a:68:1d:
46:78:98:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 07:47:19 2025 by rpki-client